CVE-2026-24176

MEDIUM 4.3

CVSS Score

4.3

EPSS Score

0.0%

EPSS Percentile

0th

NVIDIA KAI Scheduler contains a vulnerability where an attacker could cause improper authorization through cross-namespace pod references. A successful exploit of this vulnerability might lead to data tampering.

CWE	CWE-863
Vendor	nvidia
Product	kai scheduler
Published	Apr 21, 2026
Last Updated	Apr 21, 2026

Stay Ahead of the Next One

Get instant alerts for nvidia kai scheduler

Be the first to know when new medium vulnerabilities affecting nvidia kai scheduler are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

None

Affected Versions

NVIDIA / KAI Scheduler

All versions prior to 0.13.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

nvd.nist.gov: https://nvd.nist.gov/vuln/detail/CVE-2026-24176 cve.org: https://www.cve.org/CVERecord?id=CVE-2026-24176 nvidia.custhelp.com: https://nvidia.custhelp.com/app/answers/detail/a_id/5818